Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The KVM subsystem in the Linux kernel before 3.6.9, when running on hosts that use qemu userspace without XSAVE, allows local users to cause a denial of service (kernel OOPS) by using the KVM_SET_SREGS ioctl to set the X86_CR4_OSXSAVE bit in the guest cr4 register, then calling the KVM_RUN ioctl.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel KVM 本地拒绝服务漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。KVM(Kernel-based Virtual Machine,基于内核的虚拟机)是用于其中的一种虚拟化基础设施。 Linux kernel 3.6.9之前版本中的KVM子系统中存在漏洞,该漏洞源于在主机运行期间,程序使用了无XSAVE的qemu用户空间。通过在访客cr4寄存器中使用KVM_SET_SREGS ioctl设置来设置X86_CR4_
CVSS Information
N/A
Vulnerability Type
N/A